Intrepid Blog » cacert http://blog.affien.com A few thoughts Mon, 01 Mar 2010 00:58:01 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 CaCert.org http://blog.affien.com/archives/2007/12/08/cacertorg/ http://blog.affien.com/archives/2007/12/08/cacertorg/#comments Sat, 08 Dec 2007 12:20:46 +0000 Bas Westerbaan http://blog.w-nz.com/archives/2007/12/08/cacertorg/ CaCert is a Certification Authority that works with a web of trust: people meet and assure (similar to keysigning) eachother. If you’ve been assured by enough people you’ll be able to let your ssl server key be certified by cacert. It’s a lot more secure than other CA’s who just give anyone a certificate who pays enough.

Still a hierarchical system with a CA is flawed. When the CA is compromised, the whole system fails. PGP’s web of trust hasn’t got this weakness.

(Got a nice shiny cacert certified ssl certificate on my webserver now)

]]> http://blog.affien.com/archives/2007/12/08/cacertorg/feed/ 0